| Page(s) : 1 ... 287 288 289 290 291 292 293 294 295 296 [297] 298 299 300 301 302 303 304 305 306 307 ... | Result(s) : 8831 |
Alerts
| DATE | NAME | CATEGORIES | DETAIL | |
|---|---|---|---|---|
| 3.5 | 2011-09-28 | CVE-2011-2372 | cve | Mozilla Firefox before 3.6.23 and 4.x through 6, Thunderbird before 7.0, and SeaMonkey before 2.4 do not prevent the starting of a download in response to the holding of the Ent... |
| 1.9 | 2011-09-27 | CVE-2011-3693 | cve | NetSaro Enterprise Messenger Server 2.0 allows local users to discover cleartext server credentials by reading the NetSaro.fdb file. |
| 1.9 | 2011-09-27 | CVE-2011-3692 | cve | NetSaro Enterprise Messenger Server 2.0 stores cleartext console credentials in configuration.xml, which allows local users to obtain sensitive information by reading this file ... |
| 1.9 | 2011-09-27 | CVE-2011-3685 | cve | Tembria Server Monitor before 6.0.5 Build 2252 uses a substitution cipher to encrypt application credentials, which allows local users to obtain sensitive information by leverag... |
| 3.5 | 2011-09-23 | CVE-2011-2544 | cve | Cross-site scripting (XSS) vulnerability in the web interface in Cisco TelePresence System MXP Series F9.1 and earlier allows remote authenticated users to inject arbitrary web ... |
| 2.1 | 2011-09-19 | CVE-2011-3345 | cve | ulp/sdp/sdp_proc.c in the ib_sdp module (aka ib_sdp.ko) in the ofa_kernel package in the InfiniBand driver implementation in OpenFabrics Enterprise Distribution (OFED) before 1.... |
| 2.1 | 2011-09-13 | CVE-2009-5100 | cve | Pentaho BI Server 1.7.0.1062 and earlier does not set the autocomplete tag to off on web pages using a password field, which might allow physically proximate attackers to obtain... |
| 3.3 | 2011-09-06 | CVE-2011-3204 | cve | hammerhead.cc in Hammerhead 2.1.4 allows local users to write to arbitrary files via a symlink attack on (1) /tmp/hammer.log (aka the HH_LOG file) or (2) the REPORT_LOG file. |
| 1.2 | 2011-09-06 | CVE-2011-2724 | cve | The check_mtab function in client/mount.cifs.c in mount.cifs in smbfs in Samba 3.5.10 and earlier does not properly verify that the (1) device name and (2) mountpoint strings ar... |
| 2.1 | 2011-09-06 | CVE-2011-2700 | cve | Multiple buffer overflows in the si4713_write_econtrol_string function in drivers/media/radio/si4713-i2c.c in the Linux kernel before 2.6.39.4 on the N900 platform might allow l... |
| 2.1 | 2011-09-02 | CVE-2011-2176 | cve | GNOME NetworkManager before 0.8.6 does not properly enforce the auth_admin element in PolicyKit, which allows local users to bypass intended wireless network sharing restriction... |
| 3.3 | 2011-09-02 | CVE-2011-0543 | cve | Certain legacy functionality in fusermount in fuse 2.8.5 and earlier, when util-linux does not support the --no-canonicalize option, allows local users to bypass intended access... |
| 3.3 | 2011-09-02 | CVE-2011-0542 | cve | fusermount in fuse 2.8.5 and earlier does not perform a chdir to / before performing a mount or umount, which allows local users to unmount arbitrary directories via unspecified... |
| 3.3 | 2011-09-02 | CVE-2011-0541 | cve | fuse 2.8.5 and earlier does not properly handle when /etc/mtab cannot be updated, which allows local users to unmount arbitrary directories via a symlink attack. |
| 3.5 | 2011-09-02 | CVE-2011-0311 | cve | The class file parser in IBM Java before 1.4.2 SR13 FP9, as used in IBM Runtimes for Java Technology 5.0.0 before SR13 and 6.0.0 before SR10, allows remote authenticated users t... |
| 1.2 | 2011-08-29 | CVE-2011-1781 | cve | SystemTap 1.4, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF program with DW... |
| 1.2 | 2011-08-29 | CVE-2011-1769 | cve | SystemTap 1.4 and earlier, when unprivileged (aka stapusr) mode is enabled, allows local users to cause a denial of service (divide-by-zero error and OOPS) via a crafted ELF pro... |
| 2.6 | 2011-08-29 | CVE-2011-2712 | cve | Cross-site scripting (XSS) vulnerability in Apache Wicket 1.4.x before 1.4.18, when setAutomaticMultiWindowSupport is enabled, allows remote attackers to inject arbitrary web sc... |
| 2.6 | 2011-08-23 | CVE-2011-3266 | cve | The proto_tree_add_item function in Wireshark 1.6.0 through 1.6.1 and 1.4.0 through 1.4.8, when the IKEv1 protocol dissector is used, allows user-assisted remote attackers to ca... |
| 2.1 | 2011-08-19 | CVE-2011-3262 | cve | tools/libxc/xc_dom_bzimageloader.c in Xen 3.2, 3.3, 4.0, and 4.1 allows local users to cause a denial of service (management software infinite loop and management domain resourc... |
| Page(s) : 1 ... 287 288 289 290 291 292 293 294 295 296 [297] 298 299 300 301 302 303 304 305 306 307 ... | Result(s) : 8831 |
